Apollo GraphOS provides GraphQL-native workflows to implement access control declaratively across an entire supergraph. Teams using GraphOS can enforce policies at the type or field level in their router by decorating schemas with directives such as `@requiresScopes`, `@authenticated`, and new `@policy` directives. These directives provide the freedom to integrate with any authorization system, including policy engines like Casbin or Open Policy Agent (OPA). By proactively enforcing policies as code, API platform teams can ensure compliance at all times without sacrificing developer velocity. The new `@policy` directive allows users to offload policy definition and resolution for the relevant parts of their schema, integrating predefined policies from policy engines into their supergraph schema and enforcing them in their router.