gcd(6n,0n); possibly leads to an infinite loop. IMHO, gcd(x,0n) and gcd(0n, x) should return x (even if x is 0). In any case, such calls shouldn't lead to a freeze, should they?

I seem to be getting issues with bundling in vite. The target is a webworker in CJS output.

function t(n2) {
  if ("number" == typeof n2 && (n2 = BigInt(n2)), 1n === n2)
    return 1;
  let t2 = 1;
  do {
    t2++;
  } while ((n2 >>= 1n) > 1n);
  return t2;
}

Issue is similar to #16.

I have so far fixed it by forking the repo and bigint-mod-arith and refactoring the build process to just output esm JS and not try to pre-bundle, so it can be processed normally.

I would appreciate seeing that as I never really liked large minified js blobs in NPM packages.

Kudos.

I (and most other people) appreciate that randBetween isn't biased. However, based on this answer on SO, there's a better perfomant way to get rid of the bias. It's faster, energy-efficient, and reduces the possibility of running out of entropy (because systems like linux have an "entropy pool" that might get exhausted).

However, this seems to affect small intervals more than large intervals, which means there's no need for concern since this deals with BigInts. But I still recommend it, because it will improve average performance

Describe the bug
Requiring the module in the context of an unrelated worker causes it to start listening for messages, and causes errors as it tries to interpret the worker messages.

To Reproduce
Run with node.js:

const { Worker, isMainThread, parentPort } = require('worker_threads');
if (isMainThread) {
  const worker = new Worker(__filename);
  worker.postMessage('Hello world');
} else {
  require('bigint-crypto-utils');
  parentPort.once('message', msg => {
    console.log('Received:', msg);
  });
}

Results in the following output:

Received: Hello world

node:internal/event_target:912
  process.nextTick(() => { throw err; });
                           ^
TypeError [Error]: Cannot mix BigInt and other types, use explicit conversions
    at _isProbablyPrime (node_modules/bigint-crypto-utils/dist/cjs/index.node.cjs:468:17)
    at MessagePort.<anonymous> (node_modules/bigint-crypto-utils/dist/cjs/index.node.cjs:785:33)

I think the fix is to have a dedicated worker file rather than using new Worker(__filename).

In your code you use a check for existence of process.browser to detect, if the code is run in browser vs. Node (e.g. here. It doesn't work in Firefox which doesn't have such an object defined.

I've changed all occurences of process.browser with navigator (which should be defined in browsers, but not in Node) and async generation of primes started working correctly.

I don't open a pull request as there might be better ways to detect Node/browser environment.

Describe the bug
When using the latest version, 3.0.19, with typescript, I get this error:

error TS2307: Cannot find module 'bigint-mod-arith' or its corresponding type declarations.

1 export { abs, bitLength, eGcd, gcd, lcm, max, min, modInv, modPow, toZn } from 'bigint-mod-arith';

The issue seems to be, at a first glance, that the dependency to bigint-mod-arith has been moved to a dev dependency with the latest version. I've set up a quick repo to reproduce the bug.

To Reproduce

1. Clone this repo
2. Run npm run install
3. Run npm run build

Seems like line 680 should be, otherwise it doen't work and makes no sense

_useWorkers = true

If i run with
npm start
this line
console.log(await bigintCryptoUtils.prime(2048))
give this error
Uncaught (in promise) ReferenceError: bigint_mod_arith__WEBPACK_IMPORTED_MODULE_0__ is not defined

LCM can be defined as a / gcd(a, b) * b and it's guaranteed to return correct values. Some JS engines won't rearrange the expression a * b / gcd(a, b) to optimize it, so it's better to do it manually to make sure the memory footprint and speed are as optimal as possible.

Having a RNG with a min parameter whose argument isn't allowed to be negative, makes the parameter almost useless IMHO. I recommend that negative min support should be added to take full advantage of the convenience of a min parameter.
I suppose that parameter was added early because implementing it in the future would cause backwards-compatibility issues if someone tried to use the RNG. Adding it early (even though it's incomplete) was a good decision, and I appreciate that.

I want to apologize in advance if I'm unaware of some important fact that may render my suggestions useless or just bad ideas