Consider alternative ways of specifying the API key

[veox]

For example, by reading a file.

This shifts the focus from securing the environment to securing a file, which (at least on *nix systems) seems simpler to me.