We're using Fedor Indutny's pure-js cryptography both in node and browsers. His code is fast for pure-js code, but would be much faster with libsecp256k1 and other C/C++ crypto in node. Additionally, Fedor's crypto is not very well reviewed and probably contains vulnerabilities that better-reviewed C/C++ code doesn't have. We might even want to consider transpiling C/C++ code for the browser.
We're using Fedor Indutny's pure-js cryptography both in node and browsers. His code is fast for pure-js code, but would be much faster with libsecp256k1 and other C/C++ crypto in node. Additionally, Fedor's crypto is not very well reviewed and probably contains vulnerabilities that better-reviewed C/C++ code doesn't have. We might even want to consider transpiling C/C++ code for the browser.