Password generator

Uses crypto.getRandomValues — nothing leaves your tab.