Still, I would not trust that. The password could be leaked through other means, for example by setting a timer, and exfiltrating fragments of it across future requests.
The website loads some external fonts and spits out many warnings in the console by default. Does not instill confidence in the truly paranoid hacker.
You can hash yourself and check against the api with 5 lines of python
That level of care is warranted, but you'll find that you are given the tools to audit and it will pass.
You can check it yourself by looking up the hash prefix and searching for your hashed password.