Case Study: Moonfare achieves continuous license compliance and stronger open source security with FOSSA

From License Compliance to Security Moonfare’s Open Source

Moonfare, an EU-based fintech that manages more than $700+ million (€600+ million) for thousands of individual investors, needed to scale rapidly while tightening open source license compliance and security across its web platform built on many JavaScript libraries. To address growing OSS vulnerability and licensing risks, Moonfare implemented FOSSA’s Software Composition Analysis (SCA) tool to automate and enforce its open source policies.

FOSSA was up and running in just two days and delivered audit-grade reporting, a complete inventory of direct and transitive dependencies, automated policy enforcement (including failing builds for disallowed licenses), and automated change requests to remediate vulnerable packages. The result was continuous compliance, a stronger security posture that sped remediation, simplified attribution reporting for audits and due diligence, and estimated time savings of dozens of hours per month for Moonfare.

Moonfare

Umut Koseali

Head of Engineering