diff --git a/scripts/resilience/resilience.sh b/scripts/resilience/resilience.sh
index a9780ae5..0bdcc024 100755
--- a/scripts/resilience/resilience.sh
+++ b/scripts/resilience/resilience.sh
@@ -470,6 +470,21 @@ batch_host_reboot() {
         missing=$(comm -23 <(echo "$before") <(echo "$after") | tr '\n' ',' | sed 's/,$//')
         record "_batch" host_reboot FAIL "missing: $missing"
     fi
+
+    # ── L3 per-boot health gate ──────────────────────────────────
+    # Container-set equality proves the right containers exist; os-audit proves
+    # the node is actually *healthy* after the reboot: RPC up, OTA not wedged
+    # (FM12), every app reachable with valid launch metadata, FM-guards green.
+    # This is the per-boot building block os-audit.sh was written to be.
+    if [ -x "$ROOT/tests/lifecycle/os-audit.sh" ]; then
+        echo "── per-boot os-audit gate ──"
+        if ARCHY_HOST="$HOST" ARCHY_SCHEME=https ARCHY_PASSWORD="$UI_PASS" ARCHY_LOCAL=0 \
+             "$ROOT/tests/lifecycle/os-audit.sh" >"$OUT_DIR/os-audit-postboot.log" 2>&1; then
+            record "_batch" host_reboot_osaudit PASS "os-audit green after reboot"
+        else
+            record "_batch" host_reboot_osaudit FAIL "os-audit not green after reboot (see $OUT_DIR/os-audit-postboot.log)"
+        fi
+    fi
 }
 
 # ── main ─────────────────────────────────────────────────────────