The Web Crypto API available in most browsers supports both AES-GCM and AES-KW for key wrapping.
There are examples for AES-KW and AES-GCM performing key wrapping, and a popular live table indicates without any supporting reference that both are "recommended".
Is there a practical or theoretical reason why one might choose GCM over KW and vice-versa?
