That's a really good point.

I am going to implement the option to leave the password blank, so you'll get prompted for a password on connection every time, so nothing will get stored.

In the next release I am going to use Keyring to store credentials on the operating system's credential store. Stay tuned :)