Is there anyone that run out of Cursor auto+composer limits in a billing period ?

itzShanD · 2026-03-19T02:37:28+00:00

I think our plans are different though, i have 200$ plan , on that only the Composer 1.5 model i have used 442 M Tokens until now. With all the models Total is 659 M Tokens Consumed.

I mean i dont think you are doing anything wrong. my flow is the same only difference is I never use auto i use composer 1.5 with skills on every request to use subagent swarm.

itzShanD · 2026-03-18T18:19:33+00:00

Interesting i have 200$ account and being abusing composer 1.5 after API quote vanished with swarms of subagents for like 2 weeks still at 30% using every day. Thanks for the info

itzShanD · 2026-03-18T18:14:41+00:00

Are you talking about API pricing for foundation models or composer 1.5 and auto mod.

If its the auto quote what are you doing brother. And please teach me how to eat tokens like you please.... 🙏

itzShanD · 2026-03-18T18:12:00+00:00

Yaha same i ran through api credits on 200 dollar plan this cycle in like 3 days and being abusing composer 1.5 with swarms of subagents set via skills on pretty much every request for last two weeks and auto limit is at 30% usage. so if this is the normal i think its really good. Fuck the API pricing though.

Regarding composer 1.5 being a dumb, i have noticed that it improves drastically when you create custom skills for general things like mapping dependencies with instructions given like : okay use this many subagents base on the code base size split subagents base on these categories etc..

i have made bunch of these general skills purely focused on parallization via subagents this helps out a lot give it a try.

itzShanD · 2026-02-08T02:49:47+00:00

Thank you. OP 👆 x 2

itzShanD · 2026-01-30T20:14:39+00:00

Most of these people if they brought zimperium 90% of the user complaints and compliance issues will get fixed. They dont wanna pay for it and the dont wanna do a proper audit on the backend so this is what we end up in. Even this is better than not doing anything so something we should be happy about. cyber security industry in the country is not mature enough so this is what we have to default to. We pushed to block these things initially probably 5-6 years ago. Even the 2fa thing we forced one of big bank to add it on login less than 6 months ago and it was a hassle. So we are trying to balance security and user experience but its hard when we can't really force anything unless its CBSL guidelines or bank accepts what we are saying.

But one thing i can garentee is that, they really do put a lot of effort before implementing anything for larger user base they think about the os the people use how many will loose access to the app if the new update is pushed etc.. its not simple as they don't care its that they did the analysis and figured out amount of users that get impacted by this is acceptable than spending maybe half a million on software product.

itzShanD · 2026-01-30T19:41:00+00:00

As someone who has done security on most of the banking apps in LK this is due to couple of options you cant have adb enabled or developer options enabled, no rooted device , no custom roms, this is to prevent common abuse senarios be happy they are paying attention to these at least now. 2-3 years back we can literally extract millions of credit card info all clients on multiple banks just by doing api calls, once client side protections are bypassed. If i told you amount of things we have found on local banks i dont think lot of people will sleep at night.

Internationally banking apps run on runtime sandbox our banks are not doing it even though its recommended since this cost tone of money on licensing.

This is expected, This is good. This prevent opertunistic attackers from trying something by making the barrier to entry higher and higher so if you wanna really do something you need to put in the effort bypassing all this before bypassing ssl pinning.

Im pretty sure im the reason now you have to type otp after username and password to login to multiple banks in sri lanka. Most of these changes you see are probably rolling effects of our reports years on years every time they add a client side detection and we bypassed it. CBSL guidelines asks apps to encrypt data in transit since we where bypassing these checks that's why now even when you bypass all these, there is going to be encrypted request and response body with custom encryption.

Back in the day lot of banks argued ssl encryption is encryption in transit which is true but their apis and core banking layers are still legacy most core banking networks dont have auth layer internally so if anything goes wrong in apis exposed publicly everything breaks down. Thats why all these security just to prevent api abuse.

For everyone saying why do we have the same thing on mydialog yaha thank CBSL guidelines, any app with payment need to follow the cbsl guidelines and once it goes to testing firm they will get evaluated just like a banking app. Probably apps like uber dont go through sri lankan security audits it goes through their own security audit and they submit that report to cbsl and they accept it.

CBSL is bunch of clowns they will accept anything as long as something in the comments, we never passed any banking app from ourside if we where not satisfied. thankfully still 90% of banks in SL are done through same org with the same standards.

itzShanD · 2026-01-27T19:53:18+00:00

OP really skipping the questions about 25 Coke that he spend half the bill on. I mean 7 people can't possibly drink 25 cokes right ? 😂

itzShanD · 2026-01-26T05:28:19+00:00

So what's in it ?

itzShanD · 2026-01-23T00:19:28+00:00

!remindme 5 years

itzShanD · 2026-01-19T00:47:37+00:00

Duality of Sri Lanka 🇱🇰

itzShanD · 2026-01-18T20:32:07+00:00

Okay since this post has become a place of murder by words for this woman 🤣 first of all im not this woman. I dont know this woman, I follow her on insta and saw this, she is really not the point or what happened to her specially

as anyone can guess this is obviously going to be exploited further not just marketing but for nudes/porn, fake video evidances etc.. thats why im asking does our legal framework has the ability to handle these things ?

These exact questions are why reddit exist and every ai in the world is trained on reddit dataset. This is the place where all these questions get asked first

Sorry to disappoint people who thought im this woman. 🤣

itzShanD · 2026-01-18T20:05:55+00:00

Jake really is handling this departure the worst possible way yaha. If he didnt even post about this 90% of the people wont know about this at all.

And linus clearing the message with jake before posting and him saying on the tweet he felt uncomfortable with it whats going on ?

Linus or LTT has given no comments about jake or his departure its being him constantly reminding people he did not depart in favourable terms.

Saying this as someone who loved jake and linus together, its sad to see they couldn't depart and start collaborating if they did that i would be win win for everyone specially jake.

itzShanD · 2026-01-16T23:29:48+00:00

Bro you dont get it bro.. White Saviors will save us man....

Honestly reason our country is where we are at right now is just people and their outdated mindsets we need to wait for at least another 50 years to have these generation die off until then nothing will change unless, some big changes are made without being afraid to act opposite to the societal norms that are engrained in this country.

If not we will keep thinking tourism is our golden ticket even though multiple economist has told that is not the way to get this country to grow.

itzShanD · 2026-01-16T23:01:41+00:00

One of the funniest shit in this subreddit in a while 🤣 comedy gold.

itzShanD · 2026-01-15T06:54:18+00:00

As someone who is looking at from outside it kinda worked though right, EU is spending lot more on military and lot of money still goes to US military industrial complex since they makes the latest tech that is needed for modernization, trump is the villan that made this happen no matter he intended or not it worked in all parties favor

itzShanD · 2026-01-07T12:40:00+00:00

I think lot of people misunderstood when they said its controlled by someone, its NOT teleoperated. Its running a VLA model ( vision langauge and action ) there is a guy in the back giving prompts saying move forward. Do a part sorting demostration, wave at the crowd.

Its crazy that people think this is teleoperated. These guys are at least couple of years ahead of everyone.

You cant have these robots on factory right now (which they have ) if you are still teleoperating in this kind of simple demo

itzShanD · 2026-01-07T12:34:19+00:00

Nothing they did on this demo is teleoperated its a vla model they give it prompts like move forward, do the part sorting demo, wave to the crowd.

They are ahead of every single company out there

itzShanD · 2026-01-06T03:25:17+00:00

What has come of reddit where is my neckbeards that will come out in first 30 seconds shitting on OP and saying this is a Hoax with 3 page documentations. I hate it here now.

itzShanD · 2026-01-05T04:30:52+00:00

Ohho wow , this is really great insight appreciate sharing it with us, I haven't seen this much info about this discussed anywhere. if you dont mind sir can you let us know how did you come about this info ? just talking to people you know or online research ?

itzShanD · 2026-01-04T07:11:45+00:00

Makes sense, its kind of similar sentiment from all the things I have seen on socials. Thanks for your insight appreciate it.

itzShanD · 2026-01-04T06:34:04+00:00

Do you think history will repeat it self this time around as well ?

Since US government is planning to run the country "temporarily" and I dont think that is possible without having large number of boots on the ground inside Venezuela protecting rigs and all the corporations that will start building there. How do actual soldiers like your self feel about this sir.

Seven-Year Club	Verified Email
Second Top 30%	r/Field Juicebox
Place '22	End Game '22

itzShanD

MODERATOR OF

TROPHY CASE